CVE-2023-23848: 
Java vulnerability analysis and mitigation

Missing permission checks in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. The vulnerability was disclosed on February 15, 2023, and affects all versions of the Synopsys Coverity Plugin up to and including version 3.0.2 (Jenkins Advisory).

The vulnerability is tracked as CVE-2023-23848 with a CVSS v3.1 Base Score of 4.3 (MEDIUM) and vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N. The issue stems from missing permission checks in several HTTP endpoints within the plugin. The vulnerability is related to CWE-276 (Incorrect Default Permissions) and CWE-862 (Missing Authorization) (NVD).

The vulnerability allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs that were obtained through another method. This can lead to the exposure of credentials stored in Jenkins, potentially compromising the security of the Jenkins installation (Jenkins Advisory).

The vulnerability has been fixed in Synopsys Coverity Plugin version 3.0.3. The updated version requires POST requests and appropriate permissions for the affected HTTP endpoints. Users are strongly advised to upgrade to this version to mitigate the security risk (Jenkins Advisory).

The vulnerability was discovered and reported by Daniel Beck from CloudBees, Inc. It was rated as High severity in the Jenkins security advisory, highlighting its significance in the Jenkins security ecosystem (Jenkins Advisory).